getifs 0.6.0

Cross-platform enumeration of network interfaces and their MTU, gateway, multicast, and local/private/public IP addresses.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346

use std::collections::HashSet;
use std::io;
use std::net::{IpAddr, Ipv4Addr, Ipv6Addr};

use ipnet::{Ipv4Net, Ipv6Net};
use smallvec_wrapper::SmallVec;
use windows_sys::Win32::NetworkManagement::IpHelper::*;
use windows_sys::Win32::Networking::WinSock::*;

use super::{sockaddr_to_ipaddr, IpRoute, Ipv4Route, Ipv6Route, NO_ERROR};

/// `GetIpForwardTable2` returns this when the requested family has no
/// route entries (e.g. IPv6 stack present but no IPv6 routes
/// installed, or a single-stack v4 host). It's the only error code we
/// treat as "this family is just empty" in the union API; everything
/// else propagates so allocation/parameter failures aren't masked.
const ERROR_NOT_FOUND: i32 = 1168;
// `GetIpForwardTable2` returns `ERROR_NOT_SUPPORTED` (50) when the
// requested IPv4 / IPv6 stack isn't installed on the host — a v4-only
// box configured without an IPv6 stack, for example. Per Microsoft
// docs that's the same "no entries for this family" state we already
// surface for `ERROR_NOT_FOUND`, just signalled differently. Without
// this whitelist, `route_ipv6_table()` would return a hard error and
// the union `route_table()` would lose the populated v4 routes.
const ERROR_NOT_SUPPORTED: i32 = 50;

/// Owned wrapper around `MIB_IPFORWARD_TABLE2` that frees the table on
/// drop. `GetIpForwardTable2` allocates the buffer; the caller must
/// release it with `FreeMibTable`.
struct ForwardTable {
  ptr: *const MIB_IPFORWARD_TABLE2,
}

impl ForwardTable {
  fn fetch(family: u16) -> io::Result<Self> {
    let mut ptr = std::ptr::null_mut();
    let result = unsafe { GetIpForwardTable2(family, &mut ptr) };
    if result != NO_ERROR {
      // The `NETIO_STATUS` returned by `GetIpForwardTable2` *is* the
      // Win32 error code for this call — relying on `last_os_error()`
      // would read a thread-local that this API doesn't reliably set.
      // Preserve the actual code so callers can match on
      // `ERROR_NOT_FOUND` etc.
      return Err(io::Error::from_raw_os_error(result as i32));
    }
    Ok(Self { ptr })
  }

  fn rows(&self) -> &[MIB_IPFORWARD_ROW2] {
    if self.ptr.is_null() {
      return &[];
    }
    unsafe {
      let table = &*self.ptr;
      core::slice::from_raw_parts(
        &table.Table as *const _ as *const MIB_IPFORWARD_ROW2,
        table.NumEntries as usize,
      )
    }
  }
}

impl Drop for ForwardTable {
  fn drop(&mut self) {
    if !self.ptr.is_null() {
      unsafe { FreeMibTable(self.ptr as *mut _) };
    }
  }
}

/// Compute the set of directed-broadcast IPv4 addresses for every
/// locally-configured unicast prefix on this host, keyed by
/// `(InterfaceIndex, Ipv4Addr)` so the suppression is tied to the
/// adapter that owns the prefix.
///
/// Windows' `GetIpForwardTable2` returns per-subnet directed-broadcast
/// `/32` rows alongside ordinary unicast routes — `192.168.1.0/24`
/// produces a `192.168.1.255/32` housekeeping row, `127.0.0.0/8`
/// produces `127.255.255.255/32`, etc. The kernel uses these for
/// inbound broadcast handling, not for outbound forwarding, so they
/// don't belong in `route_table`'s "unicast and local" contract.
/// `Ipv4Addr::is_broadcast()` only matches the limited-broadcast
/// `255.255.255.255` and the kernel doesn't tag directed-broadcast
/// rows with anything in `MIB_IPFORWARD_ROW2`, so the only reliable
/// signal is to derive the broadcast addresses from the host's own
/// unicast addresses + prefix lengths and filter rows that match.
///
/// **Why interface-keyed:** if the set were keyed by address alone,
/// a multihomed host with a legitimate `/32` host route to address X
/// on interface A would be silently dropped if some *other*
/// interface B's prefix happened to compute X as its directed
/// broadcast. Pairing the set with `InterfaceIndex` confines the
/// suppression to "the kernel-installed broadcast row for this
/// adapter's own prefix" — exactly what the housekeeping rows
/// represent.
///
/// **`/31` exclusion:** RFC 3021 point-to-point links (and any
/// `/31`) have no broadcast address — the prefix only contains two
/// host addresses, both usable for unicast. Computing
/// `network | host_mask` there produces the second host address,
/// which is a legitimate peer. Skipping `/31` prevents that.
///
/// Returns an empty set on `GetUnicastIpAddressTable` failure rather
/// than propagating — the cost is at worst a handful of extra
/// directed-broadcast rows leaking through, vs. the alternative of
/// turning a real syscall hiccup into an empty `route_table`.
unsafe fn directed_broadcast_set() -> HashSet<(u32, Ipv4Addr)> {
  let mut out: HashSet<(u32, Ipv4Addr)> = HashSet::new();
  let mut ptr: *mut MIB_UNICASTIPADDRESS_TABLE = std::ptr::null_mut();
  if GetUnicastIpAddressTable(AF_INET, &mut ptr) != NO_ERROR {
    return out;
  }
  if ptr.is_null() {
    return out;
  }
  let table = &*ptr;
  let rows = core::slice::from_raw_parts(
    &table.Table as *const _ as *const MIB_UNICASTIPADDRESS_ROW,
    table.NumEntries as usize,
  );
  for r in rows {
    if r.Address.si_family != AF_INET {
      continue;
    }
    let prefix = r.OnLinkPrefixLength;
    // Skip prefix lengths that don't generate a meaningful broadcast:
    //   - `/0`: `host_mask = 0` → broadcast == network address, not
    //     a broadcast.
    //   - `/31` (RFC 3021): point-to-point, both addresses are unicast.
    //   - `/32`: host route, no broadcast concept.
    if prefix == 0 || prefix >= 31 {
      continue;
    }
    let v4 = r.Address.Ipv4;
    // `sin_addr.S_un.S_addr` is in network byte order; libc/windows
    // exposes it as a u32 — convert via `to_ne_bytes` then `from`.
    let raw = v4.sin_addr.S_un.S_addr;
    let bytes = raw.to_ne_bytes();
    let addr = Ipv4Addr::from(bytes);
    let host_mask: u32 = !((!0u32) << (32 - prefix));
    let addr_u32 = u32::from(addr);
    let broadcast = Ipv4Addr::from(addr_u32 | host_mask);
    out.insert((r.InterfaceIndex, broadcast));
  }
  FreeMibTable(ptr as *mut _);
  out
}

#[inline]
fn build_routev4(
  row: &MIB_IPFORWARD_ROW2,
  broadcasts: &HashSet<(u32, Ipv4Addr)>,
) -> Option<Ipv4Route> {
  // `ValidLifetime` is the kernel's "seconds this row is still
  // usable" counter; `0xffffffff` means "infinite" (statically
  // configured / never expires), `0` means the entry is past its
  // expiry and the kernel will not use it for forwarding. The
  // existing gateway path (`windows/gateway.rs`) already filters
  // `ValidLifetime > 0`; mirror that here so `route_table*()` does
  // not surface a stale row as a live route. `> 0` correctly admits
  // both finite-valid (e.g. 3600s DHCP lease) and infinite
  // (`0xffffffff`) entries.
  if row.ValidLifetime == 0 {
    return None;
  }
  let prefix = row.DestinationPrefix.Prefix;
  let dst_ip = sockaddr_to_ipaddr(AF_UNSPEC, &prefix as *const _ as *const SOCKADDR)?;
  let dst_v4 = match dst_ip {
    IpAddr::V4(ip) => ip,
    _ => return None,
  };
  // Match the public `route_table` contract (unicast/local routes).
  // Windows' `GetIpForwardTable2` includes the on-link multicast cone
  // `224.0.0.0/4`, the limited-broadcast row `255.255.255.255/32`,
  // and *per-subnet directed broadcasts* (e.g. `192.168.1.255/32`
  // for a `192.168.1.0/24` interface) alongside ordinary unicast
  // routes. The first two are catchable via `Ipv4Addr` predicates;
  // the third is a `/32` host route whose destination matches the
  // broadcast address of one of this host's own unicast prefixes —
  // see `directed_broadcast_set` for how that set is derived. Drop
  // all three so cross-platform behavior is consistent with
  // `bsd_like::build_routev4` and Linux's `RTN_BROADCAST` filter.
  if dst_v4.is_multicast() || dst_v4.is_broadcast() {
    return None;
  }

  let gw_ip = sockaddr_to_ipaddr(AF_UNSPEC, &row.NextHop as *const _ as *const SOCKADDR);
  let gw = match gw_ip {
    Some(IpAddr::V4(g)) if g != Ipv4Addr::UNSPECIFIED => Some(g),
    _ => None,
  };

  // Directed-broadcast suppression — applied only to the *exact
  // shape* the kernel installs for these housekeeping rows: a `/32`
  // route on the same interface that owns the matching unicast
  // prefix, with an unspecified next hop (on-link). Without these
  // qualifiers a legitimate user-installed `/32` host route to an
  // address that coincidentally equals another adapter's directed
  // broadcast would be dropped silently. Match against the
  // `(InterfaceIndex, dst)` pair so suppression is interface-scoped
  // — see `directed_broadcast_set` for the keying rationale.
  if row.DestinationPrefix.PrefixLength == 32
    && gw.is_none()
    && broadcasts.contains(&(row.InterfaceIndex, dst_v4))
  {
    return None;
  }
  let net = Ipv4Net::new(dst_v4, row.DestinationPrefix.PrefixLength).ok()?;

  Some(Ipv4Route::new(row.InterfaceIndex, net, gw))
}

#[inline]
fn build_routev6(row: &MIB_IPFORWARD_ROW2) -> Option<Ipv6Route> {
  // Same `ValidLifetime > 0` guard as `build_routev4` — drop
  // expired rows the kernel itself would not use.
  if row.ValidLifetime == 0 {
    return None;
  }
  let prefix = row.DestinationPrefix.Prefix;
  let dst_ip = sockaddr_to_ipaddr(AF_UNSPEC, &prefix as *const _ as *const SOCKADDR)?;
  let dst_v6 = match dst_ip {
    IpAddr::V6(ip) => ip,
    _ => return None,
  };
  // Drop `ff00::/8` for the same reason `build_routev4` drops
  // multicast/broadcast — keep `route_table` consistent with the
  // documented unicast/local contract on Windows.
  if dst_v6.is_multicast() {
    return None;
  }
  let net = Ipv6Net::new(dst_v6, row.DestinationPrefix.PrefixLength).ok()?;

  let gw_ip = sockaddr_to_ipaddr(AF_UNSPEC, &row.NextHop as *const _ as *const SOCKADDR);
  let gw = match gw_ip {
    Some(IpAddr::V6(g)) if g != Ipv6Addr::UNSPECIFIED => Some(g),
    _ => None,
  };

  Some(Ipv6Route::new(row.InterfaceIndex, net, gw))
}

/// `Ok(Some(table))` for a populated family, `Ok(None)` for "no
/// entries for this family" (kernel returned `ERROR_NOT_FOUND` —
/// stack present but empty — or `ERROR_NOT_SUPPORTED` — stack absent
/// entirely, e.g. an IPv6-disabled host). `Err(_)` for any other
/// failure (allocation, invalid parameter, etc.) — those propagate so
/// the union API can't silently turn genuine syscall failures into
/// empty results.
fn fetch_family(family: u16) -> io::Result<Option<ForwardTable>> {
  match ForwardTable::fetch(family) {
    Ok(table) => Ok(Some(table)),
    Err(e)
      if matches!(
        e.raw_os_error(),
        Some(ERROR_NOT_FOUND) | Some(ERROR_NOT_SUPPORTED)
      ) =>
    {
      Ok(None)
    }
    Err(e) => Err(e),
  }
}

pub(crate) fn route_table_by_filter<F>(mut f: F) -> io::Result<SmallVec<IpRoute>>
where
  F: FnMut(&IpRoute) -> bool,
{
  let mut out: SmallVec<IpRoute> = SmallVec::new();

  // Fetch each family independently. Suppress *only* `ERROR_NOT_FOUND`
  // (interpreted as "this family has no routes installed", e.g. on a
  // single-stack host) so the union API can return whichever family
  // is populated. Any other Win32 error — allocation failure, invalid
  // parameter, network-stack issue — propagates with its actual code,
  // so callers reasoning about connectivity can distinguish "no
  // routes" from "the table syscall failed."
  if let Some(table_v4) = fetch_family(AF_INET)? {
    // SAFETY: `directed_broadcast_set` is unsafe because it calls the
    // raw Windows table API; we contain that here so each
    // `build_routev4` call can do an O(1) hashset lookup against the
    // resulting set. v6 doesn't need this (no broadcast concept).
    let broadcasts = unsafe { directed_broadcast_set() };
    for row in table_v4.rows() {
      if let Some(r) = build_routev4(row, &broadcasts) {
        let r = IpRoute::V4(r);
        if f(&r) {
          out.push(r);
        }
      }
    }
  }
  if let Some(table_v6) = fetch_family(AF_INET6)? {
    for row in table_v6.rows() {
      if let Some(r) = build_routev6(row) {
        let r = IpRoute::V6(r);
        if f(&r) {
          out.push(r);
        }
      }
    }
  }
  Ok(out)
}

pub(crate) fn route_ipv4_table_by_filter<F>(mut f: F) -> io::Result<SmallVec<Ipv4Route>>
where
  F: FnMut(&Ipv4Route) -> bool,
{
  // Use `fetch_family` rather than `ForwardTable::fetch` directly so
  // `ERROR_NOT_FOUND` (the kernel's "this family has no route entries"
  // signal — common on a single-stack host) maps to an empty
  // `SmallVec` rather than `Err`. Real syscall failures still
  // propagate.
  let mut out: SmallVec<Ipv4Route> = SmallVec::new();
  if let Some(table) = fetch_family(AF_INET)? {
    let broadcasts = unsafe { directed_broadcast_set() };
    for row in table.rows() {
      if let Some(r) = build_routev4(row, &broadcasts) {
        if f(&r) {
          out.push(r);
        }
      }
    }
  }
  Ok(out)
}

pub(crate) fn route_ipv6_table_by_filter<F>(mut f: F) -> io::Result<SmallVec<Ipv6Route>>
where
  F: FnMut(&Ipv6Route) -> bool,
{
  // Same rationale as `route_ipv4_table_by_filter`: empty IPv6 route
  // table on a v4-only host is `Ok([])`, not `Err(ERROR_NOT_FOUND)`.
  let mut out: SmallVec<Ipv6Route> = SmallVec::new();
  if let Some(table) = fetch_family(AF_INET6)? {
    for row in table.rows() {
      if let Some(r) = build_routev6(row) {
        if f(&r) {
          out.push(r);
        }
      }
    }
  }
  Ok(out)
}